Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2004-0923HistoryJan 27, 2005 - 5:00 a.m.
CVE-2004-0923
2005-01-2705:00:00
Debian Security Bug Tracker
security-tracker.debian.org
12
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.3%
CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cups | < 1.1.20final+rc1-9 | cups_1.1.20final+rc1-9_all.deb |
| Debian | 11 | all | cups | < 1.1.20final+rc1-9 | cups_1.1.20final+rc1-9_all.deb |
| Debian | 10 | all | cups | < 1.1.20final+rc1-9 | cups_1.1.20final+rc1-9_all.deb |
| Debian | 999 | all | cups | < 1.1.20final+rc1-9 | cups_1.1.20final+rc1-9_all.deb |
| Debian | 13 | all | cups | < 1.1.20final+rc1-9 | cups_1.1.20final+rc1-9_all.deb |
Related
nessus
nessus
FreeBSD : CUPS -- local information disclosure (30cea6be-1d0c-11d9-814e-0001020eed82)
2009-04-23 00:00:00
Debian DSA-566-1 : cupsys - unsanitised input
2004-11-10 00:00:00
FreeBSD : CUPS -- local information disclosure (28)
2004-10-18 00:00:00
debian
debian
[SECURITY] [DSA 566-1] New CUPS packages fix information leak
2004-10-14 15:27:26
[SECURITY] [DSA 566-1] New CUPS packages fix information leak
2004-10-14 15:27:26
cve
cve
CVE-2004-0923
2005-01-27 05:00:00
gentoo
gentoo
CUPS: Leakage of sensitive information
2004-10-09 00:00:00
freebsd
freebsd
CUPS -- local information disclosure
2004-09-23 00:00:00
openvas
openvas
FreeBSD Ports: cups-base
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200410-06 (cups)
2008-09-24 00:00:00
Debian Security Advisory DSA 566-1 (cupsys)
2008-01-17 00:00:00
osv
osv
cupsys - unsanitised input
2004-10-14 00:00:00
cvelist
cvelist
CVE-2004-0923
2004-10-26 04:00:00
nvd
nvd
CVE-2004-0923
2005-01-27 05:00:00
cert
cert
CUPS stores user account details in plain text in log file
2004-11-19 00:00:00
ubuntucve
ubuntucve
CVE-2004-0923
2005-01-27 00:00:00
securityvulns
securityvulns
MDKSA-2004:116 - Updated cups packages fix DoS vulnerabilities
2004-10-22 00:00:00
redhat
redhat
(RHSA-2004:543) cups security update
2004-10-22 00:00:00
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
0.0004 Low
EPSS
Percentile
5.3%
Related for DEBIANCVE:CVE-2004-0923